Webmin / Bugs / #3858 XSS in Find zones matching

#3858 XSS in Find zones matching

Status: open

Owner: Jamie Cameron

Labels: Webmin Configuration (375)

Priority: 5

Updated: 2011-03-01

Created: 2011-03-01

Creator: Anonymous

Private: No

An exploitable XSS was found in " Find zones matching " into Servers>Bind.

Discussion

Nobody/Anonymous - 2011-03-01

XSS

xss.jpg

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Jamie Cameron - 2011-03-01

Could you give more details, or an example exploit?

Webmin's referrer protection should prevent XSS attacks like this completely..

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.